> Note that after the above you're allowing TLS 1.0 by default, where you > insisted on TLS 1.2 or higher before. Postfix parsing of the legacy > protocol negations has not changed. But you should be using the > preferred min/max forms. I know you're saying nothing changed, but I'm telling you: openssl s_client -connect hostname:25 -starttls smtp Failed with the above error "before" and connects as expected "after" the changes outlined. Thank you for highlighting the accidental allow of 1.0. That was not expected. The config lines actually came from the Postfix docs, so perhaps you'd like to update the docs with saner examples ? :) _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
[pfx] Re: postfix "system library:BIO_connect:Connection refused" following Debian Bookworm update
Laura Smith via Postfix-users Sun, 22 Dec 2024 06:32:57 -0800
- [pfx] postfix "system library:BIO_c... Laura Smith via Postfix-users
- [pfx] Re: postfix "system libr... Wietse Venema via Postfix-users
- [pfx] Re: postfix "system ... Laura Smith via Postfix-users
- [pfx] Re: postfix "sys... Viktor Dukhovni via Postfix-users
- [pfx] Re: postfix "... Laura Smith via Postfix-users
- [pfx] Re: postfix ... Viktor Dukhovni via Postfix-users
- [pfx] Re: post... Viktor Dukhovni via Postfix-users
